Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.38 views

Geeklog <= 1.5.2 SEC_authenticate() SQL Injection Exploit

No description provided by source. ?php / Geeklog =1.5.2 SECauthenticate/PHPAUTHUSER sql injection exploit by Nine:Situations:Group::bookoo our site: http://retrogod.altervista.org/ software site: http://www.geeklog.net/ credit goes to rgod, bug found more than a year ago working against PHP = 5....

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2009/04/13 12:0 a.m.20 views

Geeklog SEC_authenticate Function SQL Injection

The version of Geeklog installed on the remote host fails to sanitize input to the 'username' argument of the 'SECauthenticate' function in '/system/lib-security.php' before using it to construct database queries. Regardless of PHP's 'magicquotesgpc' setting, an unauthenticated attacker can explo...

5.8AI score
Exploits0References1
seebug.org
seebug.orgadded 2009/04/11 12:0 a.m.23 views

Geeklog SEC_authenticate()函数SQL注入漏洞

BUGTRAQ ID: 34456 Geeklog是一个免费的、开放源码的Web应用程序。它可以使用户创建一个虚拟的社区,可以管理用户,张贴文章等。Geeklog采用PHP实现,以MySQL为后台数据库。 Geeklog的index.php模块中的SECauthenticate函数没有正确的验证用户所提交的PHPAUTHUSER和 REMOTEUSER变量参数,远程攻击者可以通过提交恶意查询请求执行SQL注入攻击。以下是/publichtml/webservices /atom/index.php文件中34-53行的有漏洞代码段: ... requireonce...

7.3AI score
Exploits0
securityvulns
securityvulnsadded 2009/04/10 12:0 a.m.281 views

Geeklog &lt;=1.5.2 SEC_authenticate&#40;&#41;/PHP_AUTH_USER sql injection exploit

?php / Geeklog =1.5.2 SECauthenticate/PHPAUTHUSER sql injection exploit by Nine:Situations:Group::bookoo our site: http://retrogod.altervista.org/ software site: http://www.geeklog.net/ credit goes to rgod, bug found more than a year ago working against PHP = 5.0 google dorks: "By Geeklog" "Creat...

8AI score
Exploits0
Packet Storm
Packet Stormadded 2009/04/09 12:0 a.m.198 views

Geeklog 1.5.2 SQL Injection

= 5.0 google dorks: "By Geeklog" "Created this page in" +seconds +powered "By Geeklog" "Created this page in" +seconds +powered inurl:publichtml vulnerability, see /publichtml/webservices/atom/index.php near lines 34-53: ... requireonce '../../lib-common.php'; if PHPVERSION 5...

0.3AI score
Exploits0
0day.today
0day.todayadded 2009/04/09 12:0 a.m.234 views

Geeklog <= 1.5.2 SEC_authenticate() SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================= Geeklog = 5.0 google dorks: "By Geeklog" "Created this page in" +seconds +powered "By Geeklog" "Created this page in" +seconds +powered inurl:publichtml vulnerability, see...

7.1AI score
Exploits0
Rows per page
Query Builder